Re-instate spinner.gif (animation), lost in the move to PNGs. The static spinner.png has been deprecated. Fixeshttp://dev.plone.org/plone/ticket/11504 [mj]

Products.Archetypes (1.6.5)

Remove method docstrings in Referenceable and ReferenceEngine to prevent making them publishable. [davisagli]

Handle getCharset() returning None in Field.encode/decode. [elro]

Avoid various deprecation warnings under Zope 2.13. [hannosch]

Fixed a SyntaxWarning when using assert in the migrations module. [deo]

Fixed textCounter JavaScript to work with fieldnames with hyphen. API of textCounter-method changed. Second parameter takes now the name of the counterfield, not the DOM object itself. http://dev.plone.org/plone/ticket/11334 [tom_gross]

Fixed handling of Anonymous ownership in ExtensibleMetadata, where the ownership tuple is None. Also triggered for views on FactoryTool-wrapped objects. [mj]

Products.CMFEditions (2.0.5)

Workaround some potential issues with event handlers and transaction.savepoint which can cause exceptions when, for example, zope.sendmail is used to send mail in the same transaction as saving an edition. [rossp]

Products.CMFQuickInstallerTool (3.0.4)

Protect isProductInstalled so it is only callable by Managers. [davisagli]

Remove utility mapping in site manager's dictionary to enable a complete uninstall. This fixes an issue where a cascade-based uninstall would not entirely remove utilities, but merely unregister them from the component registry.

Products.PlonePAS (4.0.4)

Fix missing and broken security declarations. [davisagli]

Avoid breaking on startup if PIL isn't present. [davisagli]

Use 'defaultUser.png' as the default user portrait, since the .gif version has been deprecated for a long time now. Seehttp://dev.plone.org/plone/changeset/36350 [mj]

Products.PluggableAuthService (1.7.3)

The ZODBRoleManager made it clearer that adding a removing a role does not have much effect if you do not do the same in the root of the site (at the bottom of the Security tab at manage_access). Fixes https://bugs.launchpad.net/zope-pas/+bug/672694

Return the created user in _doAddUser, to match change in AccessControl 2.13.4.

Fixed possible binascii.Error in extractCredentials of CookieAuthHelper. This is a corner case that might happen after a browser upgrade.

Products.PortalTransforms (2.0.5)

Fix regression due to the security declarations added in 2.0.4: convertTo should still be public, but not publishable. [davisagli]

Fix missing security declarations. [davisagli]

Products.TinyMCE (1.1.8)

Suppress the WYSIWYG editor for fields whose text format is not HTML, and provide a "Edit without visual editor" link like kupu did so that the format can be switched from HTML to something else. [davisagli]

Fix wysiwyg_support to correctly respect a user's preference to use no wysiwyg editor. [davisagli]

Updated Norwegian translations. [mj]

Add tests to make sure user can switch between editors using personalize_form [msmith64]